34.254.223.218
# IP Intelligence Briefing: 34.254.223.218
## Executive Summary
This IP address is a legitimate Amazon Web Services (AWS) EC2 compute instance located in the Dublin region (eu-west-1). The profile indicates Low Risk status with a risk score of 25/100. No active threat indicators or malicious behavior were detected during observation.
---
## Infrastructure Profile
| Attribute | Value |
|---|---|
| **IP Address** | 34.254.223.218 |
| **Risk Score** | 25 (Low Risk) |
| **Provider** | Amazon Web Services (AWS) |
| **Organization** | Amazon Data Services Ireland Limited |
| **ASN** | 16509 |
| **Network Block** | 34.248.0.0/13 (AMAZON-DUB) |
| **Geolocation** | Dublin, Ireland (IE) |
| **Infrastructure Type** | CloudCompute |
| **Service Status** | Firewalled / No Services Detected |
---
## Threat Intelligence Assessment
Threat Indicators: None detected
- Blacklist Status: 0 blacklist hits
- Tor Exit Node: No
- Known Attacker: No
- Spam Source: No
- Known Campaigns: None
- Abuse Confidence Score: Not applicable
DNS Configuration:
- PTR Record: ec2-34-254-223-218.eu-west-1.compute.amazonaws.com
- Forward Resolution: Confirmed
- SPF Record: Present
- DMARC Record: Present
- Domain: amazonaws.com
Network Services: No open ports detected. No HTTP/TLS service banners or certificates identified.
---
## Control Plane & Routing
| Metric | Value |
|---|---|
| **Origin ASN** | 16509 |
| **BGP Prefix** | 34.248.0.0/13 |
| **Route Stability** | Unstable |
| **DNSBL Listings** | 1 of 8 total lists |
| **Operator Score** | 0.2609 |
---
## Subnet Neighborhood Analysis (34.254.223.0/24)
| Metric | Value |
|---|---|
| **Abuse Density** | 1 (Low) |
| **Classification** | Mostly Clean |
| **Inherited Risk** | 2 (Low) |
| **Active Siblings** | 1 |
| **Threat Siblings** | 1 |
The /24 subnet shows minimal abuse density with one active sibling and one threat sibling. No immediate correlation to broader subnet-wide malicious activity.
---
## Historical Observation Summary
Total Observations: 23 signals tracked
Recent Activity:
- June 2026: Operator score 0.3 (Basic)
- June 15, 2026: Subnet classified as "mostly_clean" with inherited risk of 2
- Threat Persistence: 0 days (no persistent malicious activity)
- Campaign Likelihood: None
---
## Entity Relationships
- DNS Associations: Multiple entries pointing to ec2-34-254-223-218.eu-west-1.compute.amazonaws.com
- Network Affiliation: AMAZON-DUB (Amazon Dublin)
- Total Relationships: 38 entities identified
---
## Recommended Security Actions
| Action Type | Recommendation |
|---|---|
| **Firewall Rules** | No specific rules required; treat as legitimate AWS infrastructure |
| **Threat Response** | No action required; IP is associated with legitimate cloud provider |
| **Monitoring** | Standard AWS traffic monitoring applies |
---
## Analysis Notes
This IP represents standard AWS EC2 infrastructure in the Dublin region. The absence of open ports, combined with proper SPF/DMARC configuration and AWS DNS naming conventions, confirms legitimate cloud infrastructure. The single DNSBL listing requires no action as it may be due to false positives from automated scanning of the broader AWS network block. No defensive blocking is recommended; standard network policies for AWS traffic apply.
Classification: Legitimate Cloud Infrastructure
Threat Level: LOW
Action Required: None
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Amazon Data Services Ireland Limited |
| ASN | AS16509 |
| Network Name | AMAZON-DUB |
| CIDR Block | 34.248.0.0/13 |
| RIR | ARIN |
| Country | Ireland |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | ec2-34-254-223-218.eu-west-1.compute.amazonaws.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | ec2-34-254-223-218.eu-west-1.compute.amazonaws.com |
๐ DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 47% | 1 | 6 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 34% | 2 | 3 |
| Overall | 29% | 10 | 21 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-25 00:41:18 UTC |
| Last Seen | 2026-06-29 00:57:55 UTC |
| Profile Built | 2026-06-29 07:00:59 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 28 |
Full dossier details are available via our API.